Ilya Grishchenko

Postdoctoral Researcher at UCSB SecLab

Logo Google Scholar

Welcome!

I am a postdoctoral researcher in Computer Science at the University of California, Santa Barbara, where I work in Security Lab (SecLab) led by Dr. Christopher Kruegel and Dr. Giovanni Vigna. My research is centered on Computer Security, specifically focusing on System Security and Formal Methods. The primary aim of my work is to develop automated program analysis techniques addressing different security challenges. You can find a list of my publications below or on my Google Scholar page.

Before coming to UCSB, I was a postdoctoral researcher at CISPA, where I worked with Dr. Christian Rossow. I obtained my Diploma from Orenburg State University, my Master’s degree from Saarland University, and my PhD from TU Wien under the supervision of Dr. Matteo Maffei. You can see more about my background in my CV.

I enjoy engaging in conversations and am always open to communication via email. Feel free to reach out to me at grishchenko@ucsb.edu.

Publications

[15] Vasan S., Aghakhani H., Ortolani S., Vasilenko R., Grishchenko I., Kruegel C., & Vigna G. DEEPCAPA: Identifying Malicious Capabilities in Windows Malware. ACSAC’24. [pdf]

[14] Zhao X., Zhang K., Su Z., Vasan S., Grishchenko I., Kruegel C., Vigna G., Wang Y., & Li L. Invisible Image Watermarks Are Provably Removable Using Generative AI. NeurIPS’24. [pdf]

[13] De Pasquale, G., Grishchenko, I., Iesari, R., Pizarro, G., Cavallaro, L., Kruegel, C., & Vigna, G. ChainReactor: Automated Privilege Escalation Chain Discovery via AI Planning. USENIX Security’24. Distinguished Artifact Award. [pdf]

[12] Su, Z., Cai, K., Beeler, R., Dresel, L., Garcia, A., Grishchenko, I., Tian, Y., Kruegel, C., & Vigna, G. Remote Keylogging Attacks in Multi-user VR Applications. USENIX Security’24. [pdf]

[11] De Silva, R., Guo, W., Ruaro, N., Grishchenko, I., Kruegel, C., & Vigna, G. GuideEnricher: Protecting the Anonymity of Ethereum Mixing Service Users with Deep Reinforcement Learning. USENIX Security’24. [pdf]

[10] Ruaro, N., Gritti, F., McLaughlin, R., Grishchenko, I., Kruegel, C., & Vigna, G. Not your Type! Detecting Storage Collision Vulnerabilities in Ethereum Smart Contracts. NDSS’24. [pdf]

[9] Gritti, F., Ruaro, N., McLaughlin, R., Bose, P., Das, D., Grishchenko, I., Kruegel, C., & Vigna, G. Confusum Contractum: Confused Deputy Vulnerabilities in Ethereum Smart Contracts. USENIX Security’23. [pdf]

[8] Bose, P., Das, D., Vasan, S., Mariani, S., Grishchenko, I., Continella, A., Bianchi, A., Kruegel, C., & Vigna, G. COLUMBUS: Android App Testing Through Systematic Callback Exploration. ICSE ‘23. [pdf]

[7] Krupp, J., Grishchenko, I., & Rossow, C. AmpFuzz: Fuzzing for Amplification DDoS Vulnerabilities. USENIX Security’22. [pdf]

[6] Gritti, F., Pagani, F., Grishchenko, I., Dresel, L., Redini, N., Kruegel, C., & Vigna, G. HEAPSTER: Analyzing the Security of Dynamic Allocators for Monolithic Firmware Images. S&P’22. [pdf]

[5] Bauer, M., Grishchenko, I., & Rossow, C. (2022). TyPro: Forward CFI for C-Style Indirect Function Calls Using Type Propagation. ACSAC’22. [pdf]

[4] Schneidewind, C., Grishchenko, I., Scherer, M., & Maffei, M. eThor: Practical and Provably Sound Static Analysis of Ethereum Smart contracts. CCS’20. [pdf]

[3] Grishchenko, I., Maffei, M., & Schneidewind, C. A Semantic Framework for the Security Analysis of Ethereum Smart contracts. ETAPS POST’18. ETAPS EALS Best Paper Award. [pdf]

[2] Calzavara, S., Grishchenko, I., Koutsos, A., & Maffei, M. A Sound Flow-sensitive Heap Abstraction for the Static Analysis of Android Applications. CSF’17. [pdf]

[1] Calzavara, S., Grishchenko, I., & Maffei, M. HornDroid: Practical and Sound Static Analysis of Android Applications by SMT Solving. EuroS&P’16. [pdf]

Service

[BAR’23] (Program Committee) [RAID’24] (Program Committee)
[USENIX’24] (Program Committee) [DIMVA’25] (Program Committee) [USENIX’25] (Program Committee)